Security Operations Defense Analyst
Deutsche Bank
Job Overview
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
About Deutsche Bank’s Bucharest Technology Centre (BEX)
DB Global Technology is Deutsche Bank’s technology center in Central and Eastern Europe. Since its set-up in 2013, Bucharest Technology Centre (BEX) has constantly proven its capacity to deliver global technology products and services, playing a dynamic role in the Bank’s technology transformation. We have a robust, hands-on engineering culture dedicated to continuous learning, knowledge-sharing, technical skill development and networking. We are an essential part of the Bank’s technology platform and develop applications for many important business areas.
As a Threat Detection & Response Analyst in our global Cyber Threat Operations Centre, you'll protect Deutsche Bank, partners, and clients through continuous monitoring, detection, and in-depth analysis of information security events. You'll be a key specialist in incident response, mitigating potential losses. Beyond operations, you'll optimize processes, tools, and reporting, focusing on automated event detection, analysis, and response.
Responsibilities
- Manage security events from diverse channels (monitoring tools, Cyber Security Hotline & Mailbox).
- Monitor, detect, analyze, respond to, and document security-relevant events; conduct/contribute to risk assessments.
- Support alert data triage, enrichment, and detection use case improvement.
- Enhance threat detection capabilities, ideally through process automation.
- Execute daily operations within defined processes and SLAs, and share your knowledge and expertise to the global CTOC team.
Skills
- Solid background and good understanding of enterprise technologies especially focusing on security devices, network engineering, operating systems, databases and security configurations on application level as well as Cloud security (Google and Azure).
- Experience with analyzing system logs including network traffic logs, payload, event logs, application logs, firewall logs, Active Directory etc.
- Experience with Security Incident and Event Management (SIEM) systems. (Splunk, GCP Chronicle, and/or Sentinel).
- Cyber security expertise and familiarized with incident response / SOC activities.
- Good knowledge of current threat landscape and attack scenarios/tactics, as well as containment and protection measures, familiar with MITRE ATTACK framework.
- Always a plus: CISSP, CISM, GCIH/GIAC, CompTIA Security+ or other relevant certifications in the field.
Well-being & Benefits
Emotionally and mentally balanced: We support you in dealing with life crises, maintaining stability through illness, and maintaining good mental health. Empowering managers who value your ideas and decisions. Show your positive attitude, determination, and open-mindedness. A professional, passionate, and fun workplace. A modern office with fun and relaxing areas to boost creativity. Continuous learning culture with coaching and support from team experts. A culture where you can openly speak about mental health. Physically thriving: We support you managing your physical health by taking appropriate preventive measures and providing a workplace that helps you thrive. For example, Private healthcare and life insurance with premium benefits for you and discounts for your loved ones, healthier ways of working and check-up's. Socially connected: We strongly believe in collaboration, inclusion and feeling connected to open up new perspectives and strengthen our self-confidence and well-being. 24 days holiday, loyalty days, and bank holidays (including weekdays for weekend bank holidays). Hybrid working model with flexible working options. Enjoy retailer discounts, cultural and CSR activities, workshops, and more. Financially secure: We support you to meet personal financial goals during your active career and for the future. Competitive income, performance-based promotions, and a sense of purpose. Meal vouchers, bonuses for referrals. Interested in more: discover what our employees value in the Well-being & Benefits hub! We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.
Key skills/competency
- Threat Detection
- Incident Response
- SIEM
- Splunk
- GCP Chronicle
- Sentinel
- MITRE ATTACK Framework
- Network Security
- Operating Systems
- Cloud Security
- Risk Assessment
How to Get Hired at Deutsche Bank
- Research Deutsche Bank's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor.
- Tailor your resume: Highlight your experience in security operations, threat detection, and incident response, aligning with Deutsche Bank's needs.
- Showcase relevant cybersecurity skills: Emphasize expertise in SIEM systems like Splunk or Sentinel, log analysis, and familiarity with the MITRE ATT&CK framework.
- Prepare for technical questions: Be ready to discuss enterprise security technologies, network engineering, operating systems, and cloud security concepts (Google, Azure).
- Demonstrate problem-solving abilities: Focus on your capacity for in-depth analysis of security events and your proactive approach to process optimization and automation.
Frequently Asked Questions
Find answers to common questions about this job opportunity
Explore similar opportunities that match your background